Besieged by spam: junk E-mail can be “filtered” inexpensively, but the costs don’t stop there – Tech Watch
Tim Reason
FROM THE NIGERIAN CIVIL SERVANT hoping to move millions of dollars to offshore havens (with your help) to pitchmen hawking herbs and procedures that promise improbable anatomical transformation, junk E-mails now waste a few precious minutes of everyone’s day. Often referred to as “spam,” this online corollary to telemarketing is more than just an annoyance–it may represent a serious financial challenge for your company. San Francisco–based Ferris Research estimates that spam will cost U.S. organizations a total of more than $10 billion this year in lost productivity and computing resources as well as the hard dollars spent on Email administrators and help-desk personnel. Those numbers do not include the cost of antispam filtering software, which, despite an annual cost of only about $5 to $10 per user, are used by less than 5 percent of companies with 10,000 or more employees.
Washington, D.C.-based National Cooperative Bank installed a software filter to block spam last year and saw its inbound E-mail volume drop by half. “I was just amazed,” says Russell Schofield, managing director of IT. Even though the filter “works like a charm,” it still doesn’t catch everything. (One problem: since the bank is involved in the mortgage business, it’s reluctant to block any E-mails with that as the subject, and low-rate mortgage come-ons are a spam staple.)
Analyst estimates of corporate spam don’t range quite as high as Schofield’s experience. Ferris says 15 percent to 20 percent of inbound E-mail at U.S. corporations is spam. At that rate, Jupiter Research estimates that an employee will delete about 2,600 pieces of spam this year alone. Yet because Jupiter defines spam very strictly, the actual number of what most people would deem junk Email messages maybe half again as high.
Moreover, while spam typically refers to unsolicited commercial E-mail, companies are realizing that so-called friends-and-family spam may soon be a problem of equal proportions. A survey conducted by Market Fact’s e.Nation for filter-provider SurfControl Plc estimates that employees receive up to 30 chain letters, jokes, video clips, or similar Email messages from someone they know every week–more than 1,500 per year. While employees may want these messages, their attachments make them far bigger bandwidth hogs than commercial spam–and far more likely to introduce viruses or content that poses a liability threat to the firm.
Legislation has been proposed several times, and current bills before Congress may stand a good chance of passing if the flurry of lobbying activity by mail marketers is any indication. Until Congress acts, however, the best method for companies to combat spam is still a software filter. Filters like those provided by U.K.-based SurfControl combine blacklists of known spammers, lexical methods (sniffing Emails for certain combinations of words), and artificial intelligence to stop spam from reaching employee mailboxes. Filters have also grown more sophisticated–captured spam can be segregated into messages to be deleted, messages that are kept to be checked by humans, and, in the case of bandwidth-heavy friends-and-family spain, messages that are simply delivered after business hours. “The goal [of a filter] is the minimum amount of human intervention, but the maximum amount of accuracy,” says SurfControl senior vice president for marketing Susan Getgood.
FALSE POSITIVES
Despite that sophistication, the possibility that legitimate E-mails (now dubbed “ham”) can be snared by filters is a potential problem for companies. It’s impossible to gauge the cost of so-called false positives, but they can certainly keep an IT department busy. When National Cooperative Bank first installed its filter, says Schofield, it blocked all E-mails sent to more than 25 employees. That generated complaints because it filtered out weekly E-mails about discount airline fares that some employees used to plan business travel.
Not surprisingly, E-mail marketers see false positives as a much more serious problem. Companies like Indianapolis-based ExactTarget, which provides software that enables companies to mount Email marketing campaigns and other bulk mailings, offer services that vet outgoing E-mail messages for phrases that are likely to run afoul of spam filters. At first glance, that would seem to make ExactTarget a spammer’s accomplice.
Not so, says president Scott Dorsey. ExactTarget’s clients must sign a contract stating that they abide by industry standard practices for “opt-in” E-mail marketing. Among other requirements, that means no rented lists. ExactTarget also vets the mailing lists its clients provide for “suspicious” E-mail addresses. Typically, this means addresses inserted into mailing lists by antispam organizations. The presence of such addresses, Dorsey says, indicates that lists are bad, or rented- grounds for terminating a client’s contract. “We work only with E-mail addresses from customers who signed up on our clients’ sites, or who have an existing business relationship with our clients,” says Dorsey. ExactTarget recently joined forces with 18 other E-mail service providers to form the Network Advertising Initiative E-mail Service Provider Coalition to give a voice to providers that follow such procedures.
Superior, Colorado-based Assurance Systems Inc., which offers similar services, estimates that 15 percent of “permissioned” E-mail was blocked by Internet service providers (which often offer filtering as a value-added service to subscribers) or companies’ own filters during fourth-quarter 2002. But, Dorsey admits, “the definition of ‘permission’ gets very, very stretched” by less-scrupulous marketers. For corporations, the distinction is often meaningless anyway. “Some people complain, ‘I’m being inundated with this stuff,’ and then we find out they’ve subscribed to it,” says Schofield.
Overall, he says, “office humor” between colleagnes’ is sometimes snared, but it’s rare for a legitimate incoming business E-mail to be blocked. Indeed, SurfControl’s Getgood says it’s important for filtering software to be flexible enough to let certain types of spain through. “Companies may have reasons to want to see spain,” she says. For example, “they may want to review any spain that mentions the company’s name.”
A case in point: as this article was being written, an E-mail marked “Hasbro Offer” was sent by bulk E-mailer PremiumsMail.net to a CEO magazine E-mail address, offering a CD-ROM version of the game Monopoly. To find out if Hasbro had authorized the marketing effort, CFO forwarded the message to the corporate communications department of the Pawtucket, R.I.-based company and followed up with a phone call. The call made it through but the E-mail didn’t- it was apparently identified as spain by Hasbro’s E-mail filters.
Hasbro spokesperson Stacey Roberts says the company doesn’t use E-mail marketing and that all of its CD-ROM products were sold to Infogrames Interactive in January 2001. Infogrames vice president of U.S. marketing services Gale Alles says the company uses E-mail marketing “as part of the mix,” but only to customers that elect to receive such offers. CEO fazed a copy of the “Hasbro Offer” to Alles (Infogrames’s E-mail system also rejected it), who determined that the mailing was the responsibility of a third party that had purchased the CD-ROM products for resale.
Given that some spain may cast your company in a bad light, a greater awareness of the risks, rewards, and actual mechanics of E-mail marketing is worth a closer look. As for its persuasive power, the aforementioned solicitations by those African “officials” have been so successful that the U.S. Secret Service has established a special task force to respond-in some cases helping to extricate Americans who enter Nigeria illegally, believing they are about to consummate the deal of a lifetime.
RELATED ARTICLE: Can’t Get in, Can’t Get Out
One potential benefit of filtering software is that it can be designed to keep E-mails in as well as out. Filters can be set to detect financial information or sensitive internal documents and either prevent their transmission or limit them to approved recipients. That can help keep a lid on such confidential efforts as mergers and acquisitions or help CFOs comply with Regulation Fair Disclosure, which prohibits the selective disclosure of material information.
Why It’s Called Spam
A variety of theories exist, many of which draw less-than-flattering analogies between the Internet scourge and the meat product made by Austin, Minn.-based Hormel Foods Corp.
Yet the most plausible explanation comes from www.spam.com, a remarkably good-humored Web site owned by Hormel itself. “Use of the term ‘spam’ was adopted as a result of the Monty Python skit in which a group of Vikings sang a chorus of ‘SPAM, SPAM, SPAM…’ in an increasing crescendo, drowning out other conversation,” the site explains. “Hence, the analogy applied because [unsolicited commercial E-mail] was drowning out normal discourse on the Internet.”
COPYRIGHT 2003 CFO Publishing Corp.
COPYRIGHT 2003 Gale Group
